2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vnet/ip/ip.h>
17 #include <vnet/ip/ip_punt_drop.h>
18 #include <vnet/policer/policer.h>
19 #include <vnet/policer/police_inlines.h>
22 VNET_FEATURE_ARC_INIT (ip4_punt) =
24 .arc_name = "ip4-punt",
25 .start_nodes = VNET_FEATURES ("ip4-punt"),
28 VNET_FEATURE_ARC_INIT (ip4_drop) =
30 .arc_name = "ip4-drop",
31 .start_nodes = VNET_FEATURES ("ip4-drop", "ip4-not-enabled"),
35 extern ip_punt_policer_t ip4_punt_policer_cfg;
37 #ifndef CLIB_MARCH_VARIANT
39 format_ip_punt_policer_trace (u8 * s, va_list * args)
41 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
42 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
43 ip_punt_policer_trace_t *t = va_arg (*args, ip_punt_policer_trace_t *);
45 s = format (s, "policer_index %d next %d", t->policer_index, t->next);
49 ip_punt_policer_t ip4_punt_policer_cfg = {
52 #endif /* CLIB_MARCH_VARIANT */
54 static char *ip4_punt_policer_error_strings[] = {
55 #define _(sym,string) string,
56 foreach_ip_punt_policer_error
60 VLIB_NODE_FN (ip4_punt_policer_node) (vlib_main_t * vm,
61 vlib_node_runtime_t * node,
64 return (ip_punt_policer (vm, node, frame,
65 vnet_feat_arc_ip4_punt.feature_arc_index,
66 ip4_punt_policer_cfg.policer_index));
70 VLIB_REGISTER_NODE (ip4_punt_policer_node) = {
71 .name = "ip4-punt-policer",
72 .vector_size = sizeof (u32),
73 .n_next_nodes = IP_PUNT_POLICER_N_NEXT,
74 .format_trace = format_ip_punt_policer_trace,
75 .n_errors = ARRAY_LEN(ip4_punt_policer_error_strings),
76 .error_strings = ip4_punt_policer_error_strings,
79 [IP_PUNT_POLICER_NEXT_DROP] = "ip4-drop",
83 VNET_FEATURE_INIT (ip4_punt_policer_node) = {
84 .arc_name = "ip4-punt",
85 .node_name = "ip4-punt-policer",
86 .runs_before = VNET_FEATURES("ip4-punt-redirect"),
91 #define foreach_ip4_punt_redirect_error \
92 _(DROP, "ip4 punt redirect drop")
96 #define _(sym,str) IP4_PUNT_REDIRECT_ERROR_##sym,
97 foreach_ip4_punt_redirect_error
99 IP4_PUNT_REDIRECT_N_ERROR,
100 } ip4_punt_redirect_error_t;
102 static char *ip4_punt_redirect_error_strings[] = {
103 #define _(sym,string) string,
104 foreach_ip4_punt_redirect_error
108 VLIB_NODE_FN (ip4_punt_redirect_node) (vlib_main_t * vm,
109 vlib_node_runtime_t * node,
110 vlib_frame_t * frame)
112 return (ip_punt_redirect (vm, node, frame,
113 vnet_feat_arc_ip4_punt.feature_arc_index,
118 VLIB_REGISTER_NODE (ip4_punt_redirect_node) = {
119 .name = "ip4-punt-redirect",
120 .vector_size = sizeof (u32),
121 .n_next_nodes = IP_PUNT_REDIRECT_N_NEXT,
122 .format_trace = format_ip_punt_redirect_trace,
123 .n_errors = ARRAY_LEN(ip4_punt_redirect_error_strings),
124 .error_strings = ip4_punt_redirect_error_strings,
126 /* edit / add dispositions here */
128 [IP_PUNT_REDIRECT_NEXT_DROP] = "ip4-drop",
129 [IP_PUNT_REDIRECT_NEXT_TX] = "ip4-rewrite",
130 [IP_PUNT_REDIRECT_NEXT_ARP] = "ip4-arp",
134 VNET_FEATURE_INIT (ip4_punt_redirect_node, static) = {
135 .arc_name = "ip4-punt",
136 .node_name = "ip4-punt-redirect",
137 .runs_before = VNET_FEATURES("error-punt"),
141 VLIB_NODE_FN (ip4_drop_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
142 vlib_frame_t * frame)
144 if (node->flags & VLIB_NODE_FLAG_TRACE)
145 ip4_forward_next_trace (vm, node, frame, VLIB_TX);
147 return ip_drop_or_punt (vm, node, frame,
148 vnet_feat_arc_ip4_drop.feature_arc_index);
152 VLIB_NODE_FN (ip4_not_enabled_node) (vlib_main_t * vm,
153 vlib_node_runtime_t * node,
154 vlib_frame_t * frame)
156 if (node->flags & VLIB_NODE_FLAG_TRACE)
157 ip4_forward_next_trace (vm, node, frame, VLIB_TX);
159 return ip_drop_or_punt (vm, node, frame,
160 vnet_feat_arc_ip4_drop.feature_arc_index);
164 ip4_punt (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
166 if (node->flags & VLIB_NODE_FLAG_TRACE)
167 ip4_forward_next_trace (vm, node, frame, VLIB_TX);
169 return ip_drop_or_punt (vm, node, frame,
170 vnet_feat_arc_ip4_punt.feature_arc_index);
174 VLIB_REGISTER_NODE (ip4_drop_node) =
177 .vector_size = sizeof (u32),
178 .format_trace = format_ip4_forward_next_trace,
185 VLIB_REGISTER_NODE (ip4_not_enabled_node) =
187 .name = "ip4-not-enabled",
188 .vector_size = sizeof (u32),
189 .format_trace = format_ip4_forward_next_trace,
196 VLIB_REGISTER_NODE (ip4_punt_node) =
198 .function = ip4_punt,
200 .vector_size = sizeof (u32),
201 .format_trace = format_ip4_forward_next_trace,
208 VNET_FEATURE_INIT (ip4_punt_end_of_arc, static) = {
209 .arc_name = "ip4-punt",
210 .node_name = "error-punt",
211 .runs_before = 0, /* not before any other features */
214 VNET_FEATURE_INIT (ip4_drop_end_of_arc, static) = {
215 .arc_name = "ip4-drop",
216 .node_name = "error-drop",
217 .runs_before = 0, /* not before any other features */
221 #ifndef CLIB_MARCH_VARIANT
223 ip4_punt_policer_add_del (u8 is_add, u32 policer_index)
225 ip4_punt_policer_cfg.policer_index = policer_index;
227 vnet_feature_enable_disable ("ip4-punt", "ip4-punt-policer",
230 #endif /* CLIB_MARCH_VARIANT */
232 static clib_error_t *
233 ip4_punt_police_cmd (vlib_main_t * vm,
234 unformat_input_t * main_input,
235 vlib_cli_command_t * cmd)
237 unformat_input_t _line_input, *line_input = &_line_input;
238 clib_error_t *error = 0;
244 if (!unformat_user (main_input, unformat_line_input, line_input))
247 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
249 if (unformat (line_input, "%d", &policer_index))
251 else if (unformat (line_input, "del"))
253 else if (unformat (line_input, "add"))
257 error = unformat_parse_error (line_input);
262 if (is_add && ~0 == policer_index)
264 error = clib_error_return (0, "expected policer index `%U'",
265 format_unformat_error, line_input);
271 ip4_punt_policer_add_del(is_add, policer_index);
274 unformat_free (line_input);
281 * @cliexcmd{set ip punt policer <INDEX>}
284 VLIB_CLI_COMMAND (ip4_punt_policer_command, static) =
286 .path = "ip punt policer",
287 .function = ip4_punt_police_cmd,
288 .short_help = "ip punt policer [add|del] <index>",
292 #ifndef CLIB_MARCH_VARIANT
295 ip4_punt_redirect_add (u32 rx_sw_if_index,
296 u32 tx_sw_if_index, ip46_address_t * nh)
299 fib_route_path_t *rpaths = NULL, rpath = {
300 .frp_proto = DPO_PROTO_IP4,
302 .frp_sw_if_index = tx_sw_if_index,
308 vec_add1 (rpaths, rpath);
310 ip4_punt_redirect_add_paths (rx_sw_if_index, rpaths);
316 ip4_punt_redirect_add_paths (u32 rx_sw_if_index, fib_route_path_t * rpaths)
318 ip_punt_redirect_add (FIB_PROTOCOL_IP4,
320 FIB_FORW_CHAIN_TYPE_UNICAST_IP4, rpaths);
322 vnet_feature_enable_disable ("ip4-punt", "ip4-punt-redirect", 0, 1, 0, 0);
326 ip4_punt_redirect_del (u32 rx_sw_if_index)
328 vnet_feature_enable_disable ("ip4-punt", "ip4-punt-redirect", 0, 0, 0, 0);
330 ip_punt_redirect_del (FIB_PROTOCOL_IP4, rx_sw_if_index);
332 #endif /* CLIB_MARCH_VARIANT */
334 static clib_error_t *
335 ip4_punt_redirect_cmd (vlib_main_t * vm,
336 unformat_input_t * main_input,
337 vlib_cli_command_t * cmd)
339 unformat_input_t _line_input, *line_input = &_line_input;
340 fib_route_path_t *rpaths = NULL, rpath;
341 dpo_proto_t payload_proto;
342 clib_error_t *error = 0;
343 u32 rx_sw_if_index = ~0;
348 vnm = vnet_get_main ();
350 if (!unformat_user (main_input, unformat_line_input, line_input))
353 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
355 if (unformat (line_input, "del"))
357 else if (unformat (line_input, "add"))
359 else if (unformat (line_input, "rx all"))
361 else if (unformat (line_input, "rx %U",
362 unformat_vnet_sw_interface, vnm, &rx_sw_if_index))
364 else if (unformat (line_input, "via %U",
365 unformat_fib_route_path, &rpath, &payload_proto))
366 vec_add1 (rpaths, rpath);
369 error = unformat_parse_error (line_input);
374 if (~0 == rx_sw_if_index)
376 error = unformat_parse_error (line_input);
382 if (vec_len (rpaths))
383 ip4_punt_redirect_add_paths (rx_sw_if_index, rpaths);
387 ip4_punt_redirect_del (rx_sw_if_index);
391 unformat_free (line_input);
398 * @cliexcmd{set ip punt policer}
401 VLIB_CLI_COMMAND (ip4_punt_redirect_command, static) =
403 .path = "ip punt redirect",
404 .function = ip4_punt_redirect_cmd,
405 .short_help = "ip punt redirect [add|del] rx [<interface>|all] via [<nh>] <tx_interface>",
409 static clib_error_t *
410 ip4_punt_redirect_show_cmd (vlib_main_t * vm,
411 unformat_input_t * main_input,
412 vlib_cli_command_t * cmd)
414 vlib_cli_output (vm, "%U", format_ip_punt_redirect, FIB_PROTOCOL_IP4);
422 * @cliexcmd{set ip punt redierect}
425 VLIB_CLI_COMMAND (show_ip4_punt_redirect_command, static) =
427 .path = "show ip punt redirect",
428 .function = ip4_punt_redirect_show_cmd,
429 .short_help = "show ip punt redirect",
435 * fd.io coding-style-patch-verification: ON
438 * eval: (c-set-style "gnu")